Cybersecurity Engineer – Fluent German Speaker.
Our client is seeking a Cybersecurity Engineer to join their team. This person will need to speak fluent German and English. Their market focus will be Germany and working on OFW projects. You will have ISO 27001 implementation and auditing certification experience. The role will report into the SCADA and Cybersecurity Lead.
The role and responsibilities:
- Understand the requirements of local regulatory and global cybersecurity initiatives, risk management, third-party assurance, disaster recovery, and vulnerability management.
- Conduct compliance checks on various monitoring and defense systems to ensure cybersecurity controls are functioning as intended.
- Propose solutions and coordinate the implementation of mitigating actions to ensure risk levels align with the organisation’s risk appetite.
- Serve as the primary contact for all cybersecurity-related matters in the Continental Europe Offshore O&M Hub.
- Lead and manage both internal and external audits, collecting evidence to demonstrate compliance with reviewed requirements.
- Integrate offshore O&M cybersecurity requirements into future project designs and third-party maintenance and supply contracts to ensure assets meet business and regulatory standards and are prepared for the O&M phase.
- Coordinate and share best practices with other company’s businesses and cybersecurity governance groups.
- Align cybersecurity strategies with other Offshore O&M Hubs (UK and USA) to implement uniform, global, and standardised solutions.
- Prepare Scope of Works and Suppliers Technical Evaluations, playing an active role during procurement processes to ensure the selection of the most technically qualified providers.
- Efficiently manage maintenance contracts, striving to reduce maintenance costs and maximize business EBITDA.
- Interact with the broader business, including onshore O&M, project services, the Technology Information Security Officer (TISO), business information security officer (BISO), and regulatory bodies as needed.
Professional Knowledge and Experience:
- Degree in a relevant discipline (Maths, Engineering, or Physical Science) with extensive knowledge and experience in Cybersecurity.
- Familiarity with security standards such as the ISO 27000 and ISA/IEC 62443 series.
- Understanding of the NIS 2 Regulations and equivalent European legislation.
- Experience in managing cybersecurity audits and collecting evidence to demonstrate compliance with standards like ISO 27001, CAF, and NIS 2.
- Proficiency with cybersecurity tools (e.g., EDR/EPP, SIEM/SOAR, Firewalls, IDS/IPS, Secure Remote Access, Switching & Routing).
- Knowledge and practical experience in SCADA control concepts and industrial control systems, such as Protection and Control and Distributed Control Systems, specifically in the power generation industry.
- Highly proficient in IT.
- Experience in conducting technical due diligence.
- Extensive experience in the engineering industry.
- Strong planning and analytical skills with the ability to anticipate and mitigate potential problems.
- Excellent communication and interpersonal skills.
- Proficient in report writing, presenting, and summarising key parameters and drivers impacting the scope of work.
- Strong organisational and operational skills, linking technical judgement to decision-making.
- Ability to support and manage a scope of work that requires interface and coordination.
- Advises on the impact of technical/specialist risks and issues, and the viability of recommended solutions.